/**
 * 功能说明:
 * 功能作者:
 * 创建日期:
 * 版权归属:每特教育|蚂蚁课堂所有 www.itmayiedu.com
 */
package com.yxm.springbootsecurity.mapper;

import com.yxm.springbootsecurity.entity.UserEntity;
import org.apache.ibatis.annotations.Select;


/**
 * 攻击sql    userName=caesar&password=' or 1='1
 * select * from t_user where username =caesar and passwd = '' or 1=1
 */
public interface UserMapper {

	@Select("SELECT * FROM t_user where username=#{userName} and passwd=#{password}")
	UserEntity login(UserEntity userEntity);



}
